I’m currently running both a home server and a VPS. The former is not reachable through the internet, only through vpn. The latter hosts public services.
The VPS is regularly cutting it very close with storage and today I messed up and crashed the whole stack trying to make an impromptu backup. Lesson learned: we need more storage! I could just rent more storage but just today I updated my home server with 16 TB of raid 1 enterprise HDDs.
So I thought I could maybe do a (wireguard) VPN tunnel directly to some storage service that I host on my homeserver. The upload is not great but realistically I dont need much. The important stuff stays on the VPS. Mainly videos, pictures and other stuff that doesnt get accessed a lot should go there. The rest should be “cached” at the VPS.
I would have to host wireguard on a server port, only have it access one folder which doesnt contain anything important, forward the port on the router and have the vps have the keys. Even if someone gets into the VPS and steals the keys, they only get that one file storage folder.
Has anyone done this? Are there services that do this or do I just host wireguard and thats it?
Thanks for reading. Have a good one! :)
I have a orangepi at home with a 2tb usb disk. I made it reachable via wireguard, and works very well as a samba server. No need to open any ports.
Very cool.
How exactly did you manage to make it available without forwarding a port? If the server is behind your routers with no way through, a vpn shouldn’t reach it either.
You need to have one member in the vpn that has a public ip address.
Also my internet provider at home gives ip6 addresses that are public.
Well, you still have to open wireguard’s UDP port to make it reachable outside your LAN.
Just sayin’ 🤷
I also need to plug in the ethernet cable 🤣 I assumed this was a given.